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1.What is the correct command to add a static route to a class-c-network 10.2.10.0 

via a gateway of 172.16.1.1? 

A. ip-route 10.2.10.0/24 172.16.1.1 

B. ip route 10.2.10.0.255.255.255.0 172.16.1.1 description aruba 

C. ip route 10.2.10.0/24.1 72.16.11 

D. ip route-static 10.2 10.0.255.255.255.0 172.16.1.1 

Answer: A 

Explanation: 

The correct command to add a static route to a class-c-network 10.2.10.0 viaa 
gateway of 172.16.1.1 is ip-route 10.2.10.0/24 172.16.1.1. This command specifies 
the destination network address (10.2.10.0) and prefix length (/24) and the next-hop 
address (172.16.1 .1) for reaching that network from the switch. The other commands 
are either incorrect syntax or incorrect parameters for adding a static route. 
References: https://www.arubanetworks.com/techdocs/AOS- we 
CX_10_04/NOSCG/Content/cx-noscg/ip-routing/sta N 
$ 
$ 
2.When would you bond multiple 2OMHz wide 802.11 chafinels? 
A. To decrease the Signal to Noise Ratio (SNR) ad 

B. To increase throughput between the client and AP 
C. To provision highly available AP groups i 

D. To utilize high gain omni-directional antengas 
Answer: B 

Explanation: <$ 

Bonding multiple 20MHz wide 802. 1¢hannels is a technique to create a wider 
bandwidth channel that supports higher data rate transmissions. It can increase the 
throughput between the client grid AP by using more spectrum resources and 
reducing interference. & 

References: https://ieeexplore.ieee.org/document/9288995 

eo 
$ 

3.What is indicated by a solid amber radio status LED on an Aruba AP? 
A. Not enough PoE is provided from the switch to power both radios of the AP 

B. The radio is working in mesh mode 
C. The radio is working the 5 GHz band only. 

D. The radio is enabled in monitor or spectrum analysis mode 
Answer: A 

Explanation: 
On an Aruba AP, a solid amber radio status LED indicates: A. Not enough PoE is 
provided from the switch to power both radios of the AP 
When the radio status LED on an Aruba AP shows a solid amber color, it typically 
signifies that the PoE (Power over Ethernet) supplied by the switch is insufficient to 
power both radios of the AP (usually the 2.4 GHz and 5 GHz bands). This may 


require checking the PoE budget of the switch or using a higher-powered PoE source. 

Other options, such as the radio working in mesh mode, operating only in the 5 GHz 
band, or being enabled in monitor or spectrum analysis mode, typically do not result 
in the LED showing a solid amber color. 


4.What does WPA3-Personal use as the source to generate a different Pairwise 
Master Key (PMK) each time a station connects to the wireless network? 

A. Session-specific information (MACs and nonces) 

B. Opportunistic Wireless Encryption (OWE) 

C. Simultaneous Authentication of Equals (SAE) 

D. Key Encryption Key (KEK) 

Answer: C N 


5.Which flew in a Layer 3 IPv4 packet header is used to mitigat Layer 3 route loops? 
A. Checksum Ka 

B. Time To Live Ka 

C. Protocol Ċ 

D. Destination IP Na 

Answer: B Ng 

Explanation: RY 

The field in a Layer 3 IPv4 packet header .#fat is used to mitigate Layer 3 route loops 
is Time To Live (TTL). TTL is an 8-bit field that indicates the maximum number of 
hops that a packet can traverse before being discarded. TTL is set by the source 
device and decremented by one jay each router that forwards the packet. If TTL 
reaches zero, the packet is drapped and an ICMP Internet Control Message Protocol 
(ICMP) Internet Control MesSage Protocol (ICMP) is a network protocol that provides 
error reporting and diagnestic functions for IP networks. ICMP is used to send 
messages such as ecko requests and replies (ping), destination unreachable, time 
exceeded, parameter problem, source quench, redirect, etc. ICMP messages are 
encapsulated in. Ue datagrams and have a specific format that contains fields such as 
type, code, cheċtksum, identifier, sequence number, data, etc. ICMP messages can 
be verified by using commands such as ping, 

traceroute, debug ip icmp, etc. message is sent back to the source device. TTL is 
used to mitigate Layer 3 route loops because it prevents packets from circulating 
indefinitely in a looped network topology. TTL also helps to conserve network 
resources and avoid congestion caused by looped packets. 

The other options are not fields in a Layer 3 IPv4 packet header because: 

- Checksum: Checksum is a 16-bit field that is used to verify the integrity of the IP 
header. Checksum is calculated by the source device and verified by the destination 
device based on the values of all fields in the IP header. Checksum does not mitigate 
Layer 3 route loops because it does not limit the number of hops that a packet can 


traverse. 
- Protocol: Protocol is an 8-bit field that indicates the type of payload carried by the IP 
datagram. Protocol identifies the upper-layer protocol that uses IP for data 
transmission, such as TCP Transmission Control Protocol (TCP) Transmission 
Control Protocol (TCP) is a connection-oriented transport layer protocol that provides 
reliable, ordered, and error-checked delivery of data between applications on different 
devices. TCP uses a three-way handshake to establish a connection between two 
endpoints, and uses sequence numbers, acknowledgments, and windowing to ensure 
data delivery and flow control. TCP also uses mechanisms such as retransmission, 
congestion avoidance, and fast recovery to handle packet loss and congestion. TCP 
segments data into smaller units called segments, which are encapsulated in IP 
datagrams and have a specific format that contains fields such as source port, 
destination port, sequence number, acknowledgment number, header,tength, flags, 
window size, checksum, urgent pointer, options, data, etc. TCP segwienis can be 
verified by using commands such as telnet, ftp, ssh, debug ip tcptransactions, etc ., 
UDP User Datagram Protocol (UDP) User Datagram Protocol £UDP) is a 
connectionless transport layer protocol that provides Ka 
$ 
$ 
6.A network administrator with existing IAP-315 aqċĠss points is interested in Aruba 
Central and needs to know which license is requifed for specific features Please 
match the required license per feature (Matck@s may be used more than once.) 
AS 
Answer Area 


Advanced | Foundation 
| Alerts on config changes via email 


Group-based firmware Compliance 
Heat maps of deployed APs 


Live upgrades of an AOS 10 cluster 


Answer: 


Answer Area 


Advanced | Foundation 
Foundation Alerts on config changes via email 
Foundation Group-based firmware Compliance 
Advanced | Heat maps of deployed APs 
Advanced | Live upgrades of an AOS 10 cluster 
` 
Explanation: 2 
a) Alerts on config changes via email - Foundation KW 
b) Group-based firmware compliance - Foundation $ 
c) Heat maps of deployed APs - Advanced > 
d) Live upgrades of an AOS10 cluster - Advanced & 


According to the Aruba Central Licensing Guide1, th undation License provides 
basic device management features such as configuration, monitoring, alerts, reports, 
firmware management, etc. The Advanced Lice provides additional features such 
as Al insights, WLAN services, NetConductor fabric, heat maps, live upgrades, etc. 
https://www.arubanetworks.com/techdocs/gentral/2.5.3/content/pdfs/licensing- 
guide.pdf à 
P 

Ħa 
7.A network technician is troublg8hooting one new AP at a branch office that will not 
receive Its configuration fronggAruba Central. The other APs at the branch are working 
as expected. The output gfthe ‘show ap debug cloud-server command' shows that 
the "cloud conflg received" Is FALSE. 
After confirming the sew AP has internet access, what would you check next? 
A. Disable and enable activate to trigger provisioning refresh 
B. Verify the AR'can ping the device on arubanetworks.com 
C. Verify the AP has a license assigned 
D. Disable and enable Aruba Central to trigger configuration refresh 
Answer: C 
Explanation: 
If the AP has internet access but does not receive its configuration from Aruba 
Central, one possible reason is that the AP does not have a license assigned in Aruba 
Central. A license is required for each AP to be managed by Aruba Central. 
References: https://www.arubanetworks.com/techdocs/Central/2.5.2-GA/HTML_frame 
set.htm#GUID-8FOE7E8 


8.A network technician is using Aruba Central to troubleshoot network issues. 
Which dashboard can be used to view and acknowledge issues when beginning the 
troubleshooting process? 

A. the Alerts and Events dashboard 

B. the Audit Trail dashboard 

C. the Reports dashboard 

D. the Tools dashboard 

Answer: A 

Explanation: 

The Alerts and Events dashboard displays all types of alerts and events generated for 
events pertaining to device provisioning, configuration, and user management. You 
can use the Config icon to configure alerts and notifications for differegt alert 
categories and severities1. You can also view the alerts and eventenli the List view 


and Summary view2. f 
References: $ 
1 https://www..arubanetworks.com'/techdoes/central/latest/gofitent/nms/alerts/configuri 
ng-alerts.htm Ka 
2 https :/www.arubanetworks.com/techdocs/central/latest/content/nms/alerts/viewing- 
alerts.htm Na 
we 
a 
W 


9.Vou need to configure wireless access fof several classes of loT devices, some of 
which operate only with 802 11b. Eachglass must have a unique PSK and will require 
a different security policy applied asd Tole There will be 15-20 different classes of 
devices and performance should 6 optimized 

Which option fulfills these requirements? 

A. Single SSID with MPSK ff each loT class using 5 GHz and 6 GHz bands 

B. Single SSID with MPSiYor each loT class using 2.4GHz and 5 GHz bands 

C. Individual SSIDs with unique PSK for each loT class, using 5GHz and 6 GHz 
bands $ 

D. Individual SSJBS with unique PSK for each loT class, using 2.4GHZ and 5GHz 
band 8 

Answer: B 


10.Which commands are used to set a default route to 10.4.5.1 on an Aruba CX 
switch when In-band management using an SVI is being used? 

A. iP default-gateway 10.4.5.1 

B. ip route 0 0 0.070 10.4 5.1 vrf mgmt 

C. ip route 0.0 0 0/0 10.4.5.1 

D. default-gateway 10.4.5.1 

Answer: C 


Explanation: 

The command that is used to set a default route to 10.4.5.1 on an Aruba CX switch 
when in-band management using an SVI is being used is ip route 0.0 0 0/0 10.4.5.1. 
This command specifies the destination network address (0.0 0 0) and prefix length 
(/0) and the next-hop address (10.4.5.1) for reaching any network that is not directly 
connected to the switch. The default route applies to the default VRF Virtual Routing 
and Forwarding. VRF is a technology that allows multiple instances of a routing table 
to co-exist within the same router at the same time. VRFs are typically used to 
segment network traffic for security, privacy, or administrative purposes., which is 
used for in-band management traffic that goes through an SVI Switch Virtual 
Interface. SVI is a virtual interface on a switch that allows the switch to route packets 
between different VLANs on the same switch or different switches that are connected 
by a trunk link. An SVI is associated with a VLAN and has an IP addrags and subnet 
mask assigned to it12. References: we 

1 https://www.arubanetworks.com/techdocs/AOS- x 
CX/10_08/HTML/ip_route_4100i-6000-6100- -6200/Content/ Ch 

2 https://www.arubanetworks.com/techdocs/AOS- O 
CX/10_08/HTML/ip_route_4100i-6000-6100- 6200/ContetiCh 

E 

11.Which Protocol Data Unit (PDU) represents pe data link layer PDU? 
A. PDU1 - Signal $ 

B. PDU2 - Frame AS 

C. PDUS - Packet Poa 

D. PDU4 - Segment oat 

Answer: B g 

Explanation: $ 
A frame is the data link layee®DU that encapsulates the network layer PDU (packet) 
with a header and a trailas*that contain information such as source and destination 
MAC addresses, fra mestype, error detection, etc. A frame is transmitted over a 
physical medium K asEthernet, Wi-Fi, etc. 

References: nig wn arubanetworks.com/techdocs/ArubaOS 86 Web Help/Cont 
ent/arubaos-solutions/1-ov 


12.When using Aruba Central what can identify recommended steps to resolve 
network health issues and allows you to share detailed information with support 
personnel? 

A. Overview Dashboard 

B. OAlOps 

C. Alerts and Events 

D. Audit Trail 

Answer: B 


Explanation: 

OAIOps is a feature of Aruba Central that uses artificial intelligence and machine 
learning to identifv recommended steps to resolve network health issues and allows 
you to share detailed information with support personnel. OAlOps provides insights 
into network performance, root cause analvsis, anomalv detection, proactive alerts, 
and automated remediation actions. OAlOps also integrates with Aruba User 
Experience Insight (UXI) sensors to measure and improve user experience across 
wired and wireless networks. 

References: https://www.arubanetworks.com/assets/ds/DS_ArubaCentral.pdf 


13.You need to troubleshoot an Aruba CX 6200 4-node VSF stack switch that fails to 
boot correctly Select the option that allows you to access the switch and see the boot 
options available for OS images and ServiceOS. n° 


N 
A. Member 2 RJ-45 console port < 
B. Member 2 switch mgmt port $ 
C. Conductor USB-C console port Ka 
D. Conductor mgmt port using SSH Ka 
Answer: C L 
$ 
> 
e 
tal 
14.A hospital uses a lot of mobile equipmentger the diagnosis and documentation of 


patient data. AS 

What Is the ideal access switch for thisgarge hospital with distribution racks of over 
400 ports in a single VSF stack? ¢” 

A. OCX 6300 V 

B. OCX 6400 $ 

C. OCX 6200 $ 

D. OCX 6100 
Answer: A 
Explanation: Ħa 

The ideal accesseSwitch for a large hospital with distribution racks of over 400 ports in 
a single VSF sfack is the CX 6300. 

This switch provides the following benefits: 

- The CX 6300 supports up to 48 ports per switch and up to 10 switches per VSF 
stack, allowing for a total of 480 ports in a single stack. This meets the requirement of 
having over 400 ports in a single VSF stack. 

- The CX 6300 supports high-performance switching with up to 960 Gbps of switching 
capacity and up to 714 Mpps of forwarding rate. This meets the requirement of having 
high throughput and low latency for mobile equipment and patient data. 

- The CX 6300 supports advanced features such as dynamic segmentation, policy- 
based routing, and role-based access control. These features enhance the security 
and flexibility of the network by applying different policies and roles to different types 


of devices and users. 

- The CX 6300 supports Aruba NetEdit, a network configuration and orchestration tool 
that simplifies the management and automation of the network. This reduces the 
complexity and human errors involved in network configuration and maintenance. 
The other options are not ideal because: 

- OCX 6400: This switch is designed for data center applications and does not 
support VSF stacking. It also does not support dynamic segmentation or policy-based 
routing, which are useful for network security and flexibility. 

- OCX 6200: This switch is designed for small to medium-sized businesses and does 
not support VSF stacking. It also has lower switching capacity and forwarding rate 
than the CX 6300, which may affect the performance of the network. 

- OCX 6100: This switch is designed for edge applications and does not support VSF 
stacking. It also has lower switching capacity and forwarding rate thanghe CX 6300, 


which may affect the performance of the network. we 
References: 
https://www.arubanetworks.com/assets/ds/DS_CX6300Seriesesdf 
https://www.arubanetworks.com/assets/ds/DS_OC6400S Kes. pdf 
https://www .arubanetworks.com/assets/ds/DS OC6200geries.pdi 
https://www.arubanetworks.com/assets/ds/DS_OC64@0Series.paf 
D 
tal 
15.Which device configuration group tvpes cata user define in Aruba Central during 
group creation? (Select two.) AS 
$ 
A. Securitv group <$ 
B. Template group i 
C. Default group $ 
X 
D. Ul group $ 
E. ESP group Ra 
Answer: B C a% 
Explanation: $ 


kO l , l l 
Aruba Central allowg you to create device configuration groups that define common 


settings for devige®s within each group. You can create different types of groups 
depending on your network requirements and management preferences. 

Two types of groups that you can define in Aruba Central during group creation are: 
- Template group: A template group allows you to create configuration templates 
using variables and expressions that can be applied to multiple devices or device 
groups. Template groups provide flexibility and scalability for managing large-scale 
deployments with similar configurations. 

- Default group: A default group is automatically created when you add devices to 
Aruba Central for the first time. The default group contains basic configuration 
settings that are applied to all devices that are not assigned to any other group. You 
can modify or delete the default group as needed. 

References: 


https://www.arubanetworks.com/techdocs/Central/latest/content/nms/device- 
groups.htm 
https://www.arubanetworks.com/techdocs/Central/latest/content/nms/template- 
groups.htm 
https://www.arubanetworks.com/techdocs/Central/latest/content/nms/default- 
group.htm 


16.What can be done to dynamically set the PoE Priority on a switch port when 
deploying IP cameras APs. and other PoE devices? 

A. Enable Quick PoE on the switch modules 

B. Enable profiling for device provisioning 


C. Configure PoE power management to Class-based Mode aN 
D. Configure PoE power management to Dynamic Mode we 
Answer: C f 
Q 
$ 


17.Please match the use case to the appropriate authenġiċàtion technologv 
(ef 


ro) 2 
Answer Area 


xy Manage 


titcates to Android devices with the Aruba Onboard Application in tne Google Play store tħat will be used f 


Answer: 
& 


Answer Area 
loud Authenticat 


Explanation: © 
Based on the information provided, here are the matches for the use case to the 
appropriate authentication technology: 

ClearPass Policy Manager: 

Authenticate users on corporate-owned Chromebook devices using 802.1X and 
context gathered from the network devices that they log into. 

Validate devices exist in a Mobile Device Management (MDM) database before 
authenticating BYOD users with corporate Active Directory using certificates. 

Cloud Authentication and Policy: 

Add certificates to Android devices with the Aruba Onboard Application in the Google 
Play store that will be used for wireless authentication. 


Leverage unbound Multi Pre-Shared Keys (MPSK) managed by Aruba Central to the 
end-users and client devices. 

The ClearPass Policy Manager is a comprehensive network access control (NAC) 
and policy management platform that can authenticate devices using 802.1X, as well 
as integrate with MDM systems for device validation. The Cloud Authentication and 
Policy is likely referring to cloud-based services such as Aruba Central, which can 
manage MPSK and distribute certificates for device authentication. 


18.You have been asked to onboard a new Aruba 6300M in a customer deployment 
You are working remotely rather than on-site You have a colleague installing the 
switch. The colleague has provided you with a remote console session to configure 
the edge switch You have been asked to configure a link aggregation going back to 
the cores using interfaces 1/1/51 and 1/1/52. The Senior Engineer ofthe project has 
asked you to configure the switch and 1Q uplink with these guidetines 

| $ 
19. Add VLAN 20 to the local VLAN database with name Mont 

Q 

X 
20. Add L3 SVI on VLAN 20 for Management using adress 10 in the 10.1.1 0/24 
subnet Na 

K2 

o 
21. Add LAG 1 using LACP mode active for th uplink 


S 
22. use vlan 20 as the native vlan on the LAG 

BG 
23. Make sure the interfaces are aff ON. 
Which configuration script will geħieve the task? 
A. Edge1# conf t vlan 20 naġfe Mgmt interface vlan 20 ip address 10.1.1.10/24 no 
shut interface lag 1 shut van access 20 lacp mode active Int 1/1/51.1/1/52 shut no 
routing lag 1 interface dag 1 no shut 
B. Edgel# conf t vląa® 20 name Mgmt interface vlan 20 ip address 10 1.1 10/24 no shut 
interface 1/1/51 tise shut vlan trunk native 20 vlan trunk allowed all lag 1 lacp mode 
active interface 1/1/51.1/1/52 no shut 
C. Edgel# conf t vian 20 name Mgmt interface vlan 20 ip address 10 1 1 10/24 no 
shut interface lag 1 shut vlan trunk native 20 vlan trunk allowed all lacp mode active 
Int 1/1/51.1/1/52 shut no routing lag 1 interface lag 1 no shut interface 1/1/51.1/1/52 
no shut 
D. conf t vlan 20 name Mgmt ip address 10 1 1.10/24 no shut interface lag 1 shut vlan 
trunk native 1 vlan trunk allowed all lacp mode active int 1/1/51.1/1/52 shut no routing 
interface lag 1 no shut interface 1/1/51.1/1/52 no shut 
Answer: C 
Explanation: 
This configuration script will achieve the task as it follows the guidelines given by the 


Senior Engineer. It creates VLAN 20 with name Mgmt, adds L3 SVI on VLAN 20 with 
IP address 10.1.1.10/24, creates LAG 1 with LACP mode active for the uplink, uses 
VLAN 20 as the native VLAN on the LAG, and ensures that the interfaces are all ON. 
References: https://www.arubanetworks.com/techdocs/AOS- 
CX/10.04/HTML/5200-6790/GUID-8FOE7E8B-0F4 


24.Based on the "snow ip route" output on an AruDaCX 8400. what type of route is 
"10.1 20 0/24, vrf default via 10.1.12.2. [1/0]"? 

A. local 

B. static 

C. OSPF 

D. connected L 

Answer: B NN 

Explanation: N 

A static route is a route that is manually configured on a route $f switch and does not 
change unless it is modified by an administrator. Static ro 168 are used to specify how 
traffic should reach specific destinations that are not diras connected to the device 
or that are not reachable by dynamic routing protoco Sin Aruba CX switches, static 
routes can be configured using the ip route command in global configuration mode. 
Based on the “show ip route” output on an Aruba CX 8400 switch, the route “10.1 20 
0/24, vrf default via 10.1.12.2, [1/0]” is a statigfoute because it has an administrative 
distance of 1 and a metric of 0, which are.t¥pical values for static routes. 

References: 

https://en.wikipedia.org/wiki/Static. retfting 
https://www.arubanetworks.com/ġethdocs/AOS-CX 1 O 04/NOSCG/Content/cx- 
Hosea d 


Ka 

o 
25.Which statement is.torrect when comparing 5 GHz and 6 GHz channels with 
identical channel wieths2 
A.5 GHz channgiS travel the same distances and provide different throughputs to 
clients comparéd to 6 GHz channels 
B. 5 GHz channels travel different distances and provide different throughputs to 
clients compared to 6 GHz channels 
C. 5 GHz channels travel the same distances and provide the same throughputs to 
clients compared to 6 GHz channels 
D. 5 GHz channels travel different distances and provide the same throughputs to 
clients compared to 6 GHz channels 
Answer: B 


26.What is the ideal Aruba access switch for a cost-effective connection to 200-380 


clients, printers and APs per distribution rack? 

A. Aruba CX 6400 

B. Aruba CX 6200 

C. Aruba CX 6300 

D. Aruba CX 6000 

Answer: C 

Explanation: 

The ideal Aruba access switch for a cost-effective connection to 200-380 clients, 
printers and APs per distribution rack is the Aruba CX 6200. This switch series is a 
cloud-manageable, stackable access switch series that is ideal for enterprise branch 
offices and campus networks, as well as SMBs. 

The CX 6200 series offers the following benefits: 

- Enterprise-class connectivity: The CX 6200 series supports ACLs, robust QoS, and 
common protocols such as static and Access OSPF routing. we 

- Power and speed for users and loT: The CX 6200 series provides built-in 1/10GbE 
uplinks and 30W to 60W of Class 4 to Class 6 PoE for powerigg devices such as APs 
and cameras. Ka 

- Scalable growth made simple: The CX 6200 series supports Aruba Virtual Switching 
Framework (VSF) that allows you to quickly grow voutfietwork to eight members in a 
single stack using high-performance built-in 10G ports. 

- Management flexibility: The CX 6200 series supports a choice of management, 
including cloud-based and on-prem Central, BLI, switch Web GUI and 
programmability with AOS-CX operating gyStem, and REST APIs. 

The other options are not ideal becauses 

- Aruba CX 6400: This switch seriesjf'a high-availabilitv modular switch series that is 
ideal for versatile edge access tqeta center deplovments. lt offers more 
performance, scalability, and gfedularitv than the CX 6200 series, but it is also more 
expensive and complex to dċblov and manage. It mav not be cost-effective for 
connecting 200-380 clie aper distribution rack. 

- Aruba CX 6300: Thig,switch series is a layer 3 stackable access and aggregation 
switch series that offers Smart Rate and High Power PoE. It offers more features and 
performance thastthe CX 6200 series, but it is also more expensive and may not be 
necessary for Sonnecting 200-380 clients per distribution rack. 

- Aruba CX 6000: This switch series is a layer 2 access switch series that offers PoE. 
It offers less features and performance than the CX 6200 series, and it does not 
support VSF stacking or routing protocols. It may not be sufficient for connecting 
200-380 clients per distribution rack. 

References: 

https://www.arubanetworks.com/products/switches/access/ 
https://www.arubanetworks.com/products/switches/access/6200-series/ 
https://www.arubanetworks.com/products/switches/access/6400-series/ 
https://www.arubanetworks.com/products/switches/access/6300-series/ 
https://www.arubanetworks.com/products/switches/access/6000-series/ 


27.Which statement about manual switch provisioning with Aruba Central is correct? 
A. Manual provisioning does not require DHCP and requires DNS 

B. Manual provisioning does not require DHCP and does not require DNS 

C. Manual provisioning requires DHCP and does not require DNS 

D. Manual provisioning requires DHCP and requires DNS 

Answer: B 

Explanation: 

Manual provisioning is a method to add switches to Aruba Central without using 
DHCP or DNS. It requires the user to enter the switch serial number, MAC address, 
and activation code in Aruba Central, and then configure the switch with the same 
activation code and Aruba Central’s IP address. 

References: https://help.central.arubanetworks. corvatest/documepiom/oniine_ help/ 


content/devices/switches/p NU 
$ 

AS 

28.What is an advantage of using Layer 2 MAC authentigétion? 

A. it matches user names to MAC address Ku 

B. No setup is required on the client Na 

C. MAC allow lists are easily maintained over ge 

D. MAC identifiers are hard to spoof $ 

Answer: B jal 

Explanation: 


Laver 2 MAG authentication is a ney of authenticating devices based on their 
MAC addresses without requirin gbihv client-side configuration or credentials. The 
switch sends the MAC aadieng the device to an authentication server such as 
ClearPass or RADIUS, whic alia if the MAC address is authorized to access the 
network. If yes, the swit rants access to the device based on the assigned role 
and policies. If no, the,switch denies access or redirects the device to a captive portal 
for further authentication. 

References: e ¥/www.arubanetworks.com/techdocs/ArubaOS_86 Web Help/Cont 
ent/arubaos-solutions/1-ov 


29.What is the recommended VSF topology? (Select two.) 
A. Star 

B. Daisy chain plus MAD 

C. Full mesh 

D. Full mesh plus MAD 

E. Ring 

Answer: B E 

Explanation: 


Only: Daisy chain plus MAD and ring are the recommended VSF topologies for Aruba 
switches. They provide high availability and redundancy for the VSF stack. MAD 
(Multiple Active Detection) is a mechanism to detect and resolve split-brain scenarios 
in a VSF stack. 

References: https://www.arubanetworks.com/techdocs/AOS- 
CX/10.04/HTML/5200-6790/GUID-D6EF042E-EE 


30.You put in a few show commands on switches EDGE1 and CORE1 to attempt to 
gather information to troubleshoot the issue Use the show command output images to 
determine the reason for the EDGE1 uplink being down 


EDGE1# TROUBLESHOOTING - SHOW COMMANDS OUTPUT CORE1# TROUBLESHOOTING - SHOW COMMANDS OUTPUT 


PS 

oY 
A. The physical interfaces aretot members of the correct LAG. 
B. Spanning-Tree block sgis preventing the Core uplink from having connectivity to 
the edge 
C. The Core is conn S to the incorrect physical interlaces 
D. LACP is not cagfigured on the Core uplink 
Answer: D e 
Explanation: 
LACP is a protocol that allows multiple physical links to be aggregated into a single 
logical link for increased bandwidth and redundancy. LACP must be configured on 
both ends of the link for it to work properly. In this case, EDGE1 has LACP configured 
on its uplink port-channel 1, but CORE1 does not have LACP configured on its 
corresponding port-channel 1. This causes a mismatch and prevents the link from 
coming up. 
References: https://www.arubanetworks.com/techdocs/ArubaOS_86 Web Help/Cont 
ent/arubaos-solutions/1-ov 
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